1University of London [London] (University of London, Senate House, Malet Street, London, WC1E 7HU - United Kingdom)
Abstract : The simple security property in an information flow policy can be enforced by encrypting data objects and distributing an appropriate secret to each user. A user derives a suitable decryption key from the secret and publicly available information. A chain-based enforcement scheme provides an alternative method of cryptographic enforcement that does not require any public information, the trade-off being that a user may require more than one secret. For a given information flow policy, there will be many different possible chain-based enforcement schemes. In this paper, we provide a polynomial-time algorithm for selecting a chain-based scheme which uses the minimum possible number of secrets. We also compute the number of secrets that will be required and establish an upper bound on the number of secrets required by any user.
https://hal.inria.fr/hal-01745832 Contributor : Hal IfipConnect in order to contact the contributor Submitted on : Wednesday, March 28, 2018 - 3:58:17 PM Last modification on : Tuesday, July 13, 2021 - 4:12:02 PM Long-term archiving on: : Thursday, September 13, 2018 - 11:50:09 AM
Jason Crampton, Naomi Farley, Gregory Gutin, Mark Jones. Optimal Constructions for Chain-Based Cryptographic Enforcement of Information Flow Policies. 29th IFIP Annual Conference on Data and Applications Security and Privacy (DBSEC), Jul 2015, Fairfax, VA, United States. pp.330-345, ⟨10.1007/978-3-319-20810-7_23⟩. ⟨hal-01745832⟩